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1 Managing change o n t he w eb 

Luis Francisco-Revilla, Frank Shipman, Richard Furuta, Unmil Karadkar, Avital Arora 
January 2001 Proceedings of the 1st ACM/IEEE-CS joint conference on Digital 

libraries JCDL '01 
Publisher: ACM Press 

Full text available' C P| pdf(274 89 KB) Additional Information: full cita tio n , a bs tra ct, re fe r ences , citin gs, index 
' ^ ~ terms 

Increasingly, digital libraries are being defined that collect pointers to World-Wide Web 
based resources rather than hold the resources themselves. Maintaining these collections 
is challenging due to distributed document ownership and high fluidity. Typically a 
collections maintainer has to assess the relevance of changes with little system aid. In 
this paper, we describe the Waldens Paths Path Manager, which assists a maintainer in 
discovering when relevant changes occur to linked resour ... 

Keywords: Walden's path, path maintenance 
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Alex Peleg, Sam Wilkie, Uri Weiser 

January 1997 Communications of the ACM, volume 40 issue l 
Publisher: ACM Press 

Additional Information: full citation , r eference s, citings, in^ex_terrns f 
review 



Full text available: |g[pdf( 3.15 MB ) 



3 Attack s and cr y pta nalysis: P u ppe tne ts: mis using web browsers as a distribu t ed a ttack Q 
£fr infrastructure 

^ V. T. Lam, S. Antonatos, P. Akritidis, K. G. Anagnostakis 

October 2006 Proceedings of the 13th ACM conference on Computer and 

communications security CCS '06 
Publisher: ACM Press 

Full text available: t jg!l| pdf(871.35 KB) Additional Information: full citation , abstract , references , index terms 

Most of the recent work on Web security focuses on preventing attacks that directly harm 
the browser's host machine and user. In this paper we attempt to quantify the threat of 
browsers being indirectly misused for attacking third parties. Specifically, we look at how 
the existing Web infrastructure (e.g., the languages, protocols, and security policies) can 
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be exploited by malicious Web sites to remotely instruct browsers to orchestrate actions 
including denial of service attacks, ... 

Keywords: distributed attacks, malicious software, web security 

Privacy and authentication: Do p pel gang er: Better browser priv acy without the bother Q 
Umesh Shankar, Chris Karlof 

October 2006 Proceedings of the 13th ACM conference on Computer and 

communications security CCS '06 
Publisher: ACM Press 

Full text available:^ pdf( 985. 19 KB) Additional Information: full citation , abstract , references , index term s 

We introduce Doppelganger, a novel system for creating and enforcing fine-grained, 
privacy preserving browser cookie policies with low manual effort. Browser cookies pose 
privacy risks, since they can be used to track users' actions in detail, but some cookies 
also enable useful functionality, like personalization features. Web browsers currently lack 
an effective cookie management mechanism. Users must choose between two unpalatable 
options: a permissive, privacy-compromising policy for every s ... 

Keywords: cookies, usable security, web privacy 



5 Privac y in browser-based attribute exchan ge Q 
4$jiy Birgit Pfitzmann, Michael Waidner 

V November 2002 Proceedings of the 2002 ACM workshop on Privacy in the Electronic 
Society WPES '02 
Publisher: ACM Press 

Full text available' "PI pdf(1 68 95 KB) Additional Information: full cita t ion , abst r act , re ferenc e s, citin gs, index 
• [aj terms . 

Browser-based attribute-exchange protocols enable users of normal web browsers to 
conveniently send attributes, such as authentication or demographic data, to web sites. 
Such protocols might become very common and almost mandatory in general consumer 
scenarios over the next few years. We derive the privacy requirements on such protocols 
from general privacy principles and study their consequences for the protocol design. We 
also survey to what extent proposals like Microsoft's Passport, IBM's e- ... 

Keywords: BBAE, Liberty, Passport, SAML, Shibboleth, attribute-exchange, e-Community 
Single Signon, identity management, privacy, roles, security, single signon, traffic data, 
wallet, web browser 

6 The effects of information scent on visual search in the h yperbolic tree Jbro wse.r Q 
^ Peter Pirolli, Stuart K. Card, Mija M. Van Der Wege 

^ March 2003 ACM Transactions on Computer-Human Interaction (TOCHI), volume 10 issue 
l 

Publisher: ACM Press 

Full text available* I p < | pdf(2 37 MB) Additional Information: full citatio n, abstract , references, citings, index 
. |a| • terms 

The Hyperbolic Tree is a focus + context information visualization that has been 
developed to amplify users' ability to navigate large tree-structured information systems. 
Information scent is a theoretical construct that captures one kind of interaction between 
task and display. Information scent is provided by task-relevant display cues, such as 
node labels on a tree that influence a user's visual search behavior and navigation 
decisions. An empirical Accuracy of Scent (AOS) score was develope ... 



http://portal.acm.org/resultsxfm?coll=ACM&dl=ACM&CFID=20941798&CFTO 4/25/2007 



Results (page 1): Padd++ browser 



Page 3 of 7 



10 



Keywords: Hyperbolic Tree, Information visualization, fisheye-lens visual search, 
focus+context, information foraging, information scent, interactive computer graphics 



RSVP Browser: Web Browsin g on Small Screen Devices 
O. de Bruijn, R. Spence, M. Y. Chong 

January 2002 Personal and Ubiquitous Computing, volume 6 issue 4 
Publisher: Springer-Verlag 

Full text available: ^ | pd f ( 1 71 .91 KB ) Additional Information: ful l citation , abstract , citin gs, i ndex terms 

In this paper, we illustrate the use of space-time trade-offs for information presentation 
on small screens. We propose the use of Rapid Serial Visual Presentation (RSVP) to 
provide a rich set of navigational information for Web browsing. The principle of RSVP 
browsing is applied to the development of a Web browser for small screen devices, the 
RSVP browser. The results of an experiment in which Web browsing with the RSVP 
browser is compared with that of a typical WAP browser suggests that RSVP ... 

Keywords: Mobile Internet, Mobile communication, Navigation, Rapid serial visual 
presentation, Small screen devices, WAP, Web browsing 



Ada ptin g t he web interface: a n ad aptive web browser ^ 
K. Henricksen, J. Indulska 

January 2001 Australian Computer Science Communications , Proceedings of the 2nd 

Australasian conference on User interface AUIC '01, volume 23 issue 5 
Publisher: IEEE Computer Society, IEEE Computer Society Press 

Full text available: ^ if| 

^^aKLPJU^ML^ Additional Information: full citation , abstract , references , citin gs 
Publisher Site 

The growing number of mobile computing devices with diverse characteristics creates a 
requirement for seamless (device independent) access to computing resources of 
distributed systems. One of the most common applications in distributed systems is the 
Web browser, which is not only used to access resources on the Internet but also as an 
interface to many Information Systems applications. In this paper, we address types of 
adaptation that can be applied to a Web browser in response to diverse con ... 

Browser-Soar: a computational model of a hi ghl y interactive task Q 
Virginia A. Peck, Bonnie E. John 

June 1992 Proceedings of the SIGCHI conference on Human factors in computing 
systems CHI '92 

Publisher: ACM Press 

Full text available: m Pdf( 843.38 KB ) Additional Information: full citation, abstract, references , citings, index. 

. terms 

Browser-Soar models the perceptual, cognitive, and motor operators of a user searching 
for information in an on-line help browser. The model accounts for 90% of the browsing 
behavior observed in ten episodes. This result suggests that much of browsing behavior is 
a routine cognitive task, describably by GOMS, and extends the boundary of tasks to 
which GOMS applies to include highly interactive tasks. Further, it also suggests that 
GOMS analyses can be used to evaluate text-editors and other ... 

Keywords: GOMS, Soar, browsing, cognitive models 
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Adam Jatowt, Yukiko Kawai, Satoshi Nakamura, Yutaka Kidawara, Katsumi Tanaka 
August 2006 Proceedings of the seventeenth conference on Hypertext and 

hypermedia HYPERTEXT "06 
Publisher: ACM Press 

Full text available: t jg? | _ pdf(459.Q8 KB) Additional Information: full citation , abstract , references , index terms 

While the Internet community recognized early on the need to store and preserve past 
content of the Web for future use, the tools developed so far for retrieving information 
from Web archives are still difficult to use and far less efficient than those developed for 
the "live Web." We expect that future information retrieval systems will utilize both the 
"live" and "past Web" and have thus developed a general framework for a past Web 
browser. A browser built using this framework would be a clien ... 

Keywords: past web, past web browser, web archive 



1 1 Im proved search rankin g : Protectin g browser state from web privacy at t acks 
Collin Jackson, Andrew Bortz, Dan Boneh, John C. Mitchell 

May 2006 Proceedings of the 15th international conference on World Wide Web 
WWW '06 

Publisher: ACM Press 

Full text available: c j|?| pdf(1 36.29 KB ) Additional Information: full citation, abstract , references, index t erms 

Through a variety of means, including a range of browser cache methods and inspecting 
the color of a visited hyperlink, client-side browser state can be exploited to track users 
against their wishes. This tracking is possible because persistent, client-side browser state 
is not properly partitioned on per-site basis in current browsers. We address this problem 
by refining the general notion of a "same-origin" policy and implementing two browser 
extensions that enforce this policy on the browser ... 

Keywords: phishing, privacy, web browser design, web spoofing 




12 Security, privac y & ethics: Protectin g browser state from web privacy attacks Q 
Collin Jackson, Andrew Bortz, Dan Boneh, John C. Mitchell 

May 2006 Proceedings of the 15th international conference on World Wide Web 
WWW '06 

Publisher: ACM Press 

Full text available: ^?|, pdf ( 1 36.29 KB ) Additional Information: full citati on, abstrac t, re ferences , index Js/ms 

Through a variety of means, including a range of browser cache methods and inspecting 
the color of a visited hyperlink, client-side browser state can be exploited to track users 
against their wishes. This tracking is possible because persistent, client-side browser state 
is not properly partitioned on per-site basis in current browsers. We address this problem 
by refining the general notion of a "same-origin" policy and implementing two browser 
extensions that enforce this policy on the browser ... 

Keywords: phishing, privacy, web browser design, web spoofing 




13 Br owsers: Off the beaten tracks: explorin g three aspects of web navi g ation 

Harald Weinreich, Hartmut Obendorf, Eelco Herder, Matthias Mayer 
^ May 2006 Proceedings of the 15th international conference on World Wide Web 
WWW '06 

Publisher: ACM Press 

Full text available: pdf( 4 40. 42 KB) Additional Information: f ull citation , abst ra ct, .references, index Jerms 
This paper presents results of a long-term client-side Web usage study, updating previous 
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studies that range in age from five to ten years. We focus on three aspects of Web 
navigation: changes in the distribution of navigation actions, speed of navigation and 
within-page navigation. "Navigation actionso corresponding to users' individual page 
requests are discussed by type. We reconfirm links to be the most important navigation 
element, while backtracking has lost more than half of its previ ... 

Keywords: browser interfaces, clickstream study, hypertext, navigation, user modeling 



14 Fo rmal methods: Provin g a WS-federation passive requestor profile with a browser Q 
^ model 

^ Thomas Gro(3, Birgit Pfitzmann, Ahmad-Reza Sadeghi 

November 2005 Proceedings of the 2005 workshop on Secure web services SWS '05 
Publisher: ACM Press 

Full text available* "pi pdf (4 15 13 KB) Additional Information: fu ll c it ation, abstract, references, citings, index 
. [Aj terms 

Web-based services are an important business area. For usability and cost-effectiveness 
these services require users to rely only on standard browsers. A representative class of 
such applications, currently in the focus of many industrial players, is Federated Identity 
Managent (FIM). In this context we are facing challenging probls; on the one hand, the 
security of the existing FIM protocols (including Microsoft Passport, OASIS SAML, and 
Liberty) is not yet based on rigorous proofs and has been ... 

Keywords: WS-federation passive requestor profile, WSFPI, identity federation, security 
proof of protocols, single signon, web browser, web service security 



15 Trusted paths for browse r s 

y£\ Zishuang (Eileen) Ye, Sean Smith, Denise Anthony 

>^ May 2005 ACM Transactions on Information and System Security (TISSEC), volume 8 
Issue 2 
Publisher: ACM Press 

Full text available" t P1 Ddf(265 37 KB) Additional Information: full citatio n, abstract, references, citings, index 
' ^ — " terms 

Computer security protocols usually terminate in a computer; however, the human-based 
services which they support usually terminate in a human. The gap between the human 
and the computer creates potential for security problems. We examine this gap, as it is 
manifested in secure Web servers. Felten et al. demonstrated the potential, in 1996, for 
malicious servers to impersonate honest servers. In this paper, we show how malicious 
servers can still do this— and can also forge the existence of an ... 

Keywords: HCISEC, Trust path, Web browser security 



16 Security throu gh the ey es of users: Hardenin g Web browsers against man-in-the- 
middle and eavesdro p pin g attacks 
Haidong Xia, Jose Carlos Brustoloni 

May 2005 Proceedings of the 14th international conference on World Wide Web 
WWW '05 

Publisher: ACM Press 

Full text available: pdf(770.11 KB) Additional Information: full citation , abstract , references , index terms 

Existing Web browsers handle security errors in a manner that often confuses users. In 
particular, when a user visits a secure site whose certificate the browser cannot verify, the 
browser typically allows the user to view and install the certificate and connect to the site 
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despite the verification failure. However, few users understand the risk of man-in-the- 
middle attacks and the principles behind certificate-based authentication. We propose 
context-sensitive certificate verification (CSCV), w ... 

Keywords: HTTPS, SSL, Web browser, certificate, eavesdropping attack, just-in-time 
instruction, man-in-the-middle attack, password, safe staging, well-in-advance instruction 



17 Bre a king bro wser s: a sur v ey 
Jeffrey Putnam, Kaleb Albee 

December 2006 Journal of Computing Sciences in Colleges, volume 22 issue 2 
Publisher: Consortium for Computing Sciences in Colleges 

Full text available: ^ pdf( 252.72 KB ) Additional Information: full citation , abstract , references , i ndex terms 

Genetic programming can be used to explore browser vulnerabilities by generating HTML 
and over time learning what fragments of HTML crash browsers or cause them to run very 
slowly. A number of browsers have been evaluated with this technique and the results are 
reported. 

18 Bro wser comparison 
Ralph Krause 

March 2002 Linux Journal volume 2002 issue 95 
Publisher: Specialized Systems Consultants, Inc. 

Full text available: [ff]_html(14 .66 KB ) Additional Information: full cit ation , abstrac t, index terms 
A look at the strengths and weaknesses of seven web browsers. 

19 Brow sers with chan ging parts: a catal og ex plorer f or Phili p G lass' website 
Harry Hochheiser 

August 2000 Proceedings of the conference on Designing interactive systems: 
processes, practices, methods, and techniques DIS 'OO 

Publisher: ACM Press 

Full text available: 6 ^ pdf ( 446.89 KB) Additional Information: ful l citation , a bstrac t, references, indexjerms 

The development of navigational tools for a web site devoted to a catalog of musical 
compositions offers a variety of design challenges. A combination of techniques developed 
from information visualization research - including starfield displays, dynamic queries, and 
zoomable user interfaces (ZUIs) - was used to construct a prototype browser for possible 
use in a web site dedicated to the work of Philip Glass. After a discussion of the goals and 
potential users of the site, this paper descr ... 

Keywords: biography, catalog browsing, interactive visualization, music, zoomable user 
interfaces 



20 Evolvin g the browser towards a standard user interface architecture 
Michael J. Rees 

January 2002 Australian Computer Science Communications , Proceedings of the 

Third Australasian conference on User interfaces - Volume 7 AUIC '02, 

Volume 24 Issue 4 

Publisher: Australian Computer Society, Inc., IEEE Computer Society Press 

Full text available: ^.pdf(857 : 16 KB). Additional Information: full, cjtation, abstract, references, index terms 

If current trends continue, it is likely that the web browser will become the only widely 
used user interface. Web applications will become the predominant software. Should this 
happen, user interface design, implementation and evaluation skills can become more 
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focussed and effective. Some of the benefits current browser user interfaces provide are 
discussed in the context of web application tools produced by the author and supported by 
examples. The software architecture of the Web brings speci ... 

Keywords: XML, browser user interface, user interface markup language, user interface 
standards 
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